Pauli
|
407820c0e3
tls: remove TODOs
|
3 years ago |
Tomas Mraz
|
ed576acdf5
Rename all getters to use get/get0 in name
|
3 years ago |
Pauli
|
0f8815aace
ssl: add zero strenght arguments to BN and RAND RNG calls
|
3 years ago |
Rich Salz
|
f6c95e46c0
Add "origin" field to EVP_CIPHER, EVP_MD
|
3 years ago |
Matt Caswell
|
a28d06f3e9
Update copyright year
|
3 years ago |
Richard Levitte
|
c5689319eb
Use ERR_R_*_LIB instead of ERR_LIB_* as reason code for sub-libraries
|
3 years ago |
Richard Levitte
|
c48ffbcca1
SSL: refactor all SSLfatal() calls
|
3 years ago |
Benjamin Kaduk
|
a92c9648cd
Clear error queue entries from bad DLTS records
|
3 years ago |
Pauli
|
5c97eeb726
TLS fixes for CBC mode and no-deprecated
|
4 years ago |
Pauli
|
b924d1b6e1
TLS: remove legacy code path supporting special CBC mode
|
4 years ago |
Matt Caswell
|
e08f86ddb1
Make ssl3_cbc_digest_record() use the real data_size
|
4 years ago |
Matt Caswell
|
2e2084dac3
Start using the provider side TLS HMAC implementation
|
4 years ago |
Matt Caswell
|
3fddbb264e
Add an HMAC implementation that is TLS aware
|
4 years ago |
John Baldwin
|
3c1641e8e8
Don't check errno if ktls_read_record() returned 0.
|
4 years ago |
Marc
|
fcc3a5204c
apps: -msg flag enhancement 2/2
|
4 years ago |
Matt Caswell
|
2d9f56e999
Ensure TLS padding is added during encryption on the provider side
|
4 years ago |
Matt Caswell
|
b558817823
Convert SSLv3 handling to use provider side CBC/MAC removal
|
4 years ago |
Matt Caswell
|
524cb684ac
Make libssl start using the TLS provider CBC support
|
4 years ago |
Matt Caswell
|
f0237a6c62
Remove SSL dependencies from tls_pad.c
|
4 years ago |
Matt Caswell
|
ebacd57bee
Split the padding/mac removal functions out into a separate file
|
4 years ago |
Matt Caswell
|
ec27e619e8
Move MAC removal responsibility to the various protocol "enc" functions
|
4 years ago |
Dmitry Belyavskiy
|
5a5530a29a
New Russian TLS 1.2 implementation
|
4 years ago |
Matt Caswell
|
33388b44b6
Update copyright year
|
4 years ago |
Matt Caswell
|
73d391ad13
Use a fetched MD if appropriate in ssl3_cbc_digest_record
|
4 years ago |
Simon Cornish
|
cc0663f697
Handle max_fragment_length overflow for DTLS
|
4 years ago |
Matt Caswell
|
8f21260b09
Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl
|
4 years ago |
Veres Lajos
|
79c44b4e30
Fix some typos
|
4 years ago |
Matt Caswell
|
3713329083
Send bad_record_mac instead of decryption_failed
|
5 years ago |
Dr. Matthias St. Pierre
|
706457b7bd
Reorganize local header files
|
5 years ago |
Bernd Edlinger
|
35f6fe7ac4
Fix BIO_printf format warnings
|
5 years ago |